Last Modified: Nov 07, 2022
Affected Product(s):
BIG-IP ASM
Known Affected Versions:
14.0.0, 14.0.0.1, 14.0.0.2, 14.0.0.3, 14.0.0.4, 14.0.0.5, 14.0.1, 14.0.1.1
Opened: Feb 09, 2018 Severity: 3-Major
Using an LTM policy rule to disable l7dos when the DoS profile on the virtual server contains an application profile with no feature enabled, causes the transaction to hang instead of forwarding the request to server.
The connection hangs. Requests are not forwarded to server.
-- LTM policy with 'disable l7dos' rule. -- DoS profile on a virtual server contains an application profile without any features enabled.
Enable any DoS application feature in the DoS profile attached to the virtual server (e.g., bot signatures, proactive bot defense, TPS-based DoS Detection, etc.). The profile can be disabled by default using the LTM rules.
None